diff options
| author | Bernd Edlinger <bernd.edlinger@hotmail.de> | 2019-09-07 00:58:31 +0200 |
|---|---|---|
| committer | Bernd Edlinger <bernd.edlinger@hotmail.de> | 2019-09-09 14:43:57 +0200 |
| commit | 2b95e8efcf8b99892106070d9ac745a0a369f503 (patch) | |
| tree | d0c6a3ab4cebbd7a59cacc08be021c347b9f10c9 /crypto/dh/dh_check.c | |
| parent | fa01370f7dc8f0a379483bbe74de11225857e5fe (diff) | |
| download | openssl-2b95e8efcf8b99892106070d9ac745a0a369f503.zip openssl-2b95e8efcf8b99892106070d9ac745a0a369f503.tar.gz openssl-2b95e8efcf8b99892106070d9ac745a0a369f503.tar.bz2 | |
DH_check_pub_key_ex was accidentally calling DH_check,
so results were undefined.
Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/9796)
Diffstat (limited to 'crypto/dh/dh_check.c')
| -rw-r--r-- | crypto/dh/dh_check.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/crypto/dh/dh_check.c b/crypto/dh/dh_check.c index 373110d..2d19a8f 100644 --- a/crypto/dh/dh_check.c +++ b/crypto/dh/dh_check.c @@ -176,7 +176,8 @@ int DH_check_pub_key_ex(const DH *dh, const BIGNUM *pub_key) { int errflags = 0; - (void)DH_check(dh, &errflags); + if (!DH_check_pub_key(dh, pub_key, &errflags)) + return 0; if ((errflags & DH_CHECK_PUBKEY_TOO_SMALL) != 0) DHerr(DH_F_DH_CHECK_PUB_KEY_EX, DH_R_CHECK_PUBKEY_TOO_SMALL); |